Mikaela
/
shell-things
mirror of https://gitea.blesmrt.net/mikaela/shell-things.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

etc/sshd_config.d: add basic-security.conf 

Ref: 88
This commit is contained in:
Aminda Suomalainen 2021-01-30 20:47:21 +02:00
parent 35a118a5e8
commit a7c643bb7a
Signed by: Mikaela
GPG Key ID: 99392F62BAE30723
2 changed files with 16 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
etc/ssh/sshd_config.d/README.md Normal file
View File

@ -0,0 +1,3 @@
sshd_config should include something like
Include /etc/ssh/sshd_config.d/*.conf

13
etc/ssh/sshd_config.d/basic-security.conf Normal file
View File

@ -0,0 +1,13 @@
# RSA and Ed25519 are fine, but DSA is broken and ecdsa is suspicious
HostKey /etc/ssh/ssh_host_rsa_key
HostKey /etc/ssh/ssh_host_ed25519_key
# Includes public keys in logins
LogLevel VERBOSE
# root login should probably be denied entirely, but key is better than
# password
PermitRootLogin prohibit-password
# Passwords are bad
PasswordAuthentication no